Lucene search

CVE-2023-0042

🗓️ 12 Jan 2023 00:00:00Reported by GitLabType

A security issue in GitLab CE/EE versions 11.4 - 15.7.2 allows redirection to arbitrary protocols

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 13
Tenable Nessus	GitLab < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 (SECURITY-RELEASE-GITLAB-15-7-2-RELEASED) (CVE-2023-0042)	8 Feb 202300:00	–	nessus
Tenable Nessus	GitLab 11.4 < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 (CVE-2023-0042)	3 Jan 202400:00	–	nessus
Tenable Nessus	FreeBSD : Gitlab -- Multiple Vulnerabilities (3a023570-91ab-11ed-8950-001b217b3468)	11 Jan 202300:00	–	nessus
OSV	CVE-2023-0042	12 Jan 202304:15	–	osv
OSV	BIT-gitlab-2023-0042	6 Mar 202411:12	–	osv
Veracode	Open Redirect	6 Aug 202323:57	–	veracode
Prion	Code injection	12 Jan 202304:15	–	prion
CVE	CVE-2023-0042	12 Jan 202304:15	–	cve
NVD	CVE-2023-0042	12 Jan 202304:15	–	nvd
Vulnrichment	CVE-2023-0042	12 Jan 202300:00	–	vulnrichment

[
  {
    "vendor": "GitLab",
    "product": "GitLab",
    "versions": [
      {
        "version": ">=11.4, <15.5.7",
        "status": "affected"
      },
      {
        "version": ">=15.6, <15.6.4",
        "status": "affected"
      },
      {
        "version": ">=15.7, <15.7.2",
        "status": "affected"
      }
    ]
  }
]

Source	Link
gitlab	www.gitlab.com/gitlab-org/gitlab-pages/-/issues/728
gitlab	www.gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0042.json

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Jan 2023 00:00Current

6.5Medium risk

Vulners AI Score6.5

CVSS36.1

EPSS0.00066